Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/iySC3kmwuzGqkgqTekP1BUqi59c.roa
File: iySC3kmwuzGqkgqTekP1BUqi59c.roa (raw, json)
Hash identifier: fKWoeJh76aXOtYtTCLFfYCc0mw3M6RH64nSC+TM4IIA=
Subject key identifier: 8B:24:82:DE:49:B0:BB:31:AA:92:0A:93:7A:43:F5:05:4A:A2:E7:D7
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 018E6012BEB1208AC4437D0CE39B24144FB0
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/iySC3kmwuzGqkgqTekP1BUqi59c.roa
Signing time: Thu 21 Mar 2024 08:13:44 +0000
ROA not before: Thu 21 Mar 2024 08:13:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 77.91.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 12:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:12:be:b1:20:8a:c4:43:7d:0c:e3:9b:24:14:4f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Mar 21 08:13:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b2482de49b0bb31aa920a937a43f5054aa2e7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:be:71:0b:a8:37:37:9f:ed:fe:4b:76:96:15:
d9:5d:b3:c7:e1:1b:ee:cb:26:77:7a:1c:93:c0:13:
f9:95:a5:e3:44:f5:aa:84:50:15:cb:3b:c8:11:d5:
65:7f:74:a4:6c:5c:8c:23:1f:71:de:7d:3a:09:9b:
0a:29:fe:99:a7:ad:c8:5e:e9:91:92:fe:bd:bd:d8:
1c:22:d9:51:48:00:09:5e:99:42:10:c7:27:79:c3:
a0:8e:b5:72:b0:70:9e:1f:f5:d4:5d:51:e8:97:e8:
d4:88:18:d0:73:b0:89:f3:20:98:73:6d:1f:fb:9b:
ba:5f:34:f1:27:d5:3f:d2:7d:dd:96:cb:9f:17:43:
83:40:55:91:58:32:04:cb:83:a3:be:31:71:44:31:
7f:ca:4c:18:43:1f:2e:ec:a1:a1:f9:43:da:b3:12:
e6:d9:df:1a:63:f2:87:3f:0b:2a:e0:57:17:59:7b:
37:8e:f9:20:25:7a:d5:65:f8:87:23:bf:18:9b:74:
03:60:ec:f2:72:b2:ca:02:79:f2:e2:e3:36:7e:04:
a3:eb:c5:11:68:c8:5e:7b:c9:5e:97:4c:8e:57:e8:
f5:0f:70:e3:01:19:af:f0:f9:96:d0:f8:1f:bf:5a:
80:ed:8b:57:c1:15:27:c7:db:5b:05:1d:e6:3d:14:
f8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:24:82:DE:49:B0:BB:31:AA:92:0A:93:7A:43:F5:05:4A:A2:E7:D7
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/iySC3kmwuzGqkgqTekP1BUqi59c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.65.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:6f:8d:be:5d:db:1f:94:b2:77:21:9f:be:69:2c:78:5d:68:
33:fc:10:cf:1f:e7:a1:54:3a:aa:e8:05:56:73:81:47:97:f4:
49:4e:8a:9e:b8:b6:94:26:41:10:59:b9:3e:27:3b:78:0b:80:
c7:af:92:72:dc:26:7e:c9:b4:62:e9:0f:cf:19:02:76:2c:64:
f1:92:bb:e9:32:9c:1d:40:1a:f3:bc:6e:f1:c9:63:52:90:cf:
05:02:f0:35:76:b0:f9:04:ec:54:b7:53:45:9a:cf:6a:20:9d:
03:6f:d1:d8:31:3c:e4:0b:de:07:45:cd:fc:a2:4c:5a:6c:2d:
94:30:f5:15:09:8e:a3:57:78:2c:6a:c0:49:09:06:24:7d:67:
75:c0:fe:21:9c:06:b9:67:c6:3f:23:f0:82:26:a3:0f:a0:67:
7e:92:98:d2:28:4e:d8:03:61:f0:34:a0:09:a3:76:e6:49:fc:
32:fb:a3:c2:ee:93:78:3f:5f:a5:56:57:f5:10:30:f6:d4:8c:
1e:d0:78:e6:14:bf:2c:23:a3:c7:2f:4a:de:d9:5b:91:e7:c0:
5d:08:6b:7f:70:af:c8:13:92:fb:00:fa:34:d6:0d:16:ac:c8:
b5:a3:2f:59:4c:16:e0:bb:22:12:df:e3:07:f4:92:ba:9d:1d:
51:29:73:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 14:03:48 2024 by rpki-client on console-ams.rpki-client.org